3. Publishing Applications to Users
Configuring Microsoft Windows Application Servers for Printing
Configuring Printing for Microsoft RDP 5.0 or Later
Configuring the Printers Available in Windows Terminal Services Sessions
Configuring Other Microsoft Windows Application Servers for Printing
Configuring UNIX and Linux Platform Application Servers for Printing
How to Install an SGD Printer Queue on a UNIX or Linux Platform Application Server
The SGD Printer Queue Installation Script
Printing With the SGD lp and lpr Scripts
Configuring an SGD Server for Printing
Checking the Ghostscript Installation on the SGD Host
Using the gstest Script to Test a Ghostscript Installation
Configuring the SGD Host to Accept Remote Print Requests
Configuring SGD Print Job Conversion
Printer Type Configuration Files
The tta_print_converter Script
Configuring Printing to Microsoft Windows Client Devices
The Printer Types Configuration File
Printing From a UNIX or Linux Platform Application Server
Configuring Printing to UNIX, Linux, and Mac OS X Platform Client Devices
Setting a Time Limit for Print Jobs
Users Cannot Print From Applications Displayed Through SGD
Troubleshooting Other Printing Problems
Troubleshooting Printer Preferences and Settings
Current Client Printer Preferences Are Ignored
Changes to Printer Preferences Are Not Remembered
Printer Preferences Are Corrupted
Printer Preferences Are Lost When a User Changes Printers
Local Printer Settings Are Not Set in the Remote Windows Application Session
Printer Settings Are Ignored When Using PDF Printing
Print Jobs Can Be Queued When SGD Printing is Disabled
Fonts Do Not Print Correctly With PDF Printing
TrueType Fonts and Windows Applications
Changing Printer Names in Windows Application Sessions
Changing the Names of the SGD PDF Printers
Users See a Printer Called '_Default' in a Windows Application Session?
Setting Up Client Drive Mapping
Configuring UNIX and Linux Platform Application Servers for CDM
Configuring an NFS Share for CDM
Configuring a Shared Directory on the Application Server
Configuring How Client Drives Are Displayed on UNIX Platforms
Starting CDM Processes on the Application Server
Configuring Microsoft Windows Application Servers for CDM
How to Enable SGD Client Drive Mapping Services
Running UNIX Platform CDM With Another SMB Service
How to Run UNIX Platform CDM and Another SMB Service on the Same Host
Configuring the Client Drives Available to Users
Configuring the Drives Available to UNIX, Linux, and Mac OS X Platform Client Devices
An Example of Configuring Drive Availability for Users
Troubleshooting Client Drive Mapping
Removable Drives Attached During a User Session are Not Detected Automatically
Invalid Password Errors on Microsoft Windows Application Servers
More Client Drives Are Mapped Than Expected
The Recycle Bin Does Not Work As Expected
Mapped Drives Have Unusual Names
CDM Limitations for Shared Users
Disabling CDM for a Client Device
Enabling CDM Logging for the SGD Array
CDM Diagnostics for Microsoft Windows Application Servers
CDM Diagnostics for UNIX or Linux Platform Application Servers
SGD Client Logging for Client Devices
Configuring Microsoft Windows Application Servers for Audio
Configuring UNIX and Linux Platform Application Servers for Audio
Configuring X Applications for Audio
How to Enable the SGD Windows Audio Service
How to Enable the SGD UNIX Audio Service
Configuring Client Devices for Audio
Troubleshooting Audio in Applications
Enabling UNIX Audio Debug Logging
Controlling Copy and Paste in Applications
Configuring Global Copy and Paste Settings for the SGD Array
Configuring Copy and Paste for Specific Users
Configuring Copy and Paste for Specific Applications
An Example of Using Clipboard Security Levels
Using Smart Cards With Windows Applications
Setting Up Access to Smart Cards
Configuring the Microsoft Windows Application Server for Smart Cards
Application Server Authentication Dialog Settings
How to Enable Smart Cards in SGD
Configuring Smart Card Readers on Client Devices
Microsoft Windows Client Devices
Linux Platform and Solaris OS Client Devices
How to Log In to a Microsoft Windows Application Server With a Smart Card
Setting Up Access to Serial Ports
Configuring the Microsoft Windows Application Server
Enabling Serial Port Access in SGD
How to Enable Access to Serial Ports
7. SGD Servers, Arrays, and Load Balancing
B. Secure Global Desktop Server Settings
This section describes how to configure and control access to copy and paste for applications displayed through SGD. Common problems with copy and paste are also described.
This section includes the following topics:
Users can copy and paste text between applications displayed through SGD. Users can also copy and paste text between applications running on a client device and applications displayed through SGD. SGD supports the copy and paste of Unicode characters.
Users can only copy and paste graphics to or from Microsoft Windows 2000 or later applications.
For Windows applications and X applications, you copy and paste by using the normal method for the application you are copying from, and then the normal method for the application you are pasting to.
For character applications, click with the right mouse button, and then choose Copy or Paste as appropriate. To select a column of text in a character application, hold down the Shift key while selecting the text.
If a user attempts a copy and paste operation that is not permitted, for example because of differing security levels, they paste the following message instead of the copied data: Oracle Secure Global Desktop Software: Copied data not available to this application
SGD Administrators have full control over copy and paste operations in Windows applications
and X applications. See Controlling Copy and Paste in Applications.
In the Administration Console, you can control copy and paste operations for Windows applications and X applications displayed through SGD by doing the following:
Configuring global copy and paste settings for the SGD array
Configuring copy and paste for specific users
Configuring copy and paste for specific applications
On the Global Settings -> Client Device tab, copy and paste for SGD as a whole can be enabled or disabled. By default, copy and paste is enabled.
The Client’s Clipboard Security Level attribute can be used to assign a security level to the SGD Client. Data can only be copied from SGD to applications running on the client device if the SGD Client has the same security level or higher as the source application. This enables SGD Administrators to secure the flow of data outside of SGD. The default Client’s Clipboard Security Level is 3.
On the Client Device tab for organization, organizational unit, or user profile objects, the Copy and Paste attribute can be used to control which users in the organization are allowed to use copy and paste.
The setting for this attribute can be inherited from a parent object in the organizational hierarchy, so that SGD Administrators can enable or disable copy and paste for many users without having to edit each user profile object. By default, copy and paste is enabled.
On the Client Device tab for Windows application and X application objects, the Copy and Paste attribute can be used to enable or disable copy and paste operations to or from the application.
The application can also be assigned a Clipboard Security Level. Users can only copy and paste data to an application displayed through SGD if the application has the same security level or higher as the source application. The source application is the application that the data was copied from. This enables SGD Administrators to secure the data available through particular applications. The default security level is 3.
When configuring security levels, the higher the number, the higher the security level.
Note - Character applications displayed through SGD are treated the same as applications running on the client. This is because character applications use the local client clipboard for copy and paste operations.
In this example, copy and paste has been enabled for all users in an organization. The Client’s Clipboard Security Level attribute is set to 3, the default setting. The following table shows the security levels for applications displayed through SGD.
|
When an SGD user runs these applications, the following copy and paste operations are allowed.
|
The following are some tips for SGD Administrators who need to configure copy and paste settings for SGD objects.
To disable copy and paste from applications running on the client device to all applications displayed through SGD, the value of the Client’s Clipboard Security Level attribute must be higher than the highest value of the Application’s Clipboard Security Level attribute of any application in the organizational hierarchy.
To disable copy and paste from all applications displayed through SGD to applications running on the client device, the value of the Client’s Clipboard Security Level attribute must be lower than the lowest value of the Application’s Clipboard Security Level attribute of any application in the organizational hierarchy.
To disable all copy and paste operations to or from the client device, deselect the Copy and Paste check box on the Global Settings -> Client Device tab in the Administration Console.
To disable all copy and paste operations for an individual Windows application or X application accessed through SGD, deselect the Copy and Paste check box on the Client Device tab for the application in the Administration Console.
Inherit the copy and paste settings from other objects in the organizational hierarchy as much as possible. Only enable or disable copy and paste for individual users if you really have to. This simplifies the administration of copy and paste settings.
For best results when copying and pasting non-ASCII text, run SGD in a UTF-8 locale. If it is not possible to do this and UTF-8 locales are installed on the SGD host, you can specify a UTF-8 locale by setting the TTA_TEXTCONV_LANG environment variable. For example:
TTA_TEXTCONVLANG=en_US.UTF8; export TTA_TEXTCONVLANG
You must restart SGD for this environment variable to take effect.
For Windows applications and X applications, users can only copy and paste text under the following conditions:
In the Administration Console, go to the Global Settings -> Client Device tab, copy and paste for SGD as a whole must be enabled. Copy and paste is enabled by default.
The user must be allowed to copy and paste. If the Copy and Paste attribute on the Client Device tab for the user profile is selected, then the user can copy and paste. This attribute might be configured to use the setting of any parent organizational unit or organization object. Copy and paste is enabled by default.
To be able to paste data to another Windows application or X application displayed through SGD, the source application must have an Application’s Clipboard Security Level that is lower than, or equal to, the target application. The source application is the application the data is copied from. The target application is the application the data is pasted to. The default security level is 3.
To be able to paste data to an application running on the client device, the source application must have an Application’s Clipboard Security Level that is lower than, or equal to, the Client’s Clipboard Security Level. The Client’s Clipboard Security Level is shown on the Global Settings -> Client Device tab of the Administration Console. The default Client’s Clipboard Security Level is 3.
If these conditions are not met, users paste the following message, instead of the copied data: Oracle Secure Global Desktop Software: Copied data not available to this application
For Windows applications, users you can only copy graphics from, or paste graphics to, Microsoft Windows 2000 or later applications.
To copy and paste Unicode text in X applications, the X application must support Unicode. Common Desktop Environment (CDE) and Motif applications, for example, do not support Unicode.